Lucene search
RootSSV:62081HistoryApr 08, 2014 - 12:00 a.m.
MediaWiki 'Special:ChangePassword'跨站请求伪造漏洞
2014-04-0800:00:00
Root
www.seebug.org
13
0.002 Low
EPSS
Percentile
56.0%
Bugtraq ID:66600
CVE ID:CVE-2014-2665
MediaWiki是一款Wiki程序。
MediaWiki 'Special:ChangePassword’存在跨站请求伪造漏洞,允许远程攻击者构建恶意URI,诱使用户解析,可以目标用户上下文执行恶意操作。
0
MediaWiki 1.22.5
目前厂商已经发布了升级补丁以修复漏洞,请下载使用:
https://bugzilla.wikimedia.org/show_bug.cgi?id=62497
Related
nessus
nessus
MediaWiki < 1.19.14 / 1.21.8 / 1.22.5 ChangePassword XSRF
2014-04-02 00:00:00
Mandriva Linux Security Advisory : mediawiki (MDVSA-2014:083)
2014-05-09 00:00:00
Fedora 20 : mediawiki-1.21.8-1.fc20 (2014-4478)
2014-04-09 00:00:00
debiancve
debiancve
CVE-2014-2665
2014-04-20 01:55:06
mageia
mageia
Updated mediawiki packages fix CVE-2014-2665
2014-04-03 17:29:32
securityvulns
securityvulns
[ MDVSA-2014:083 ] mediawiki
2014-05-10 00:00:00
nvd
nvd
CVE-2014-2665
2014-04-20 01:55:06
cve
cve
CVE-2014-2665
2014-04-20 01:55:06
cvelist
cvelist
CVE-2014-2665
2014-04-20 01:00:00
prion
prion
Cross site request forgery (csrf)
2014-04-20 01:55:00
openvas
openvas
Mageia: Security Advisory (MGASA-2014-0157)
2022-01-28 00:00:00
Fedora Update for mediawiki FEDORA-2014-4511
2014-04-10 00:00:00
Fedora Update for mediawiki FEDORA-2014-4478
2014-04-10 00:00:00
ubuntucve
ubuntucve
CVE-2014-2665
2014-04-20 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: mediawiki-1.21.8-1.fc20
2014-04-09 01:00:28
[SECURITY] Fedora 19 Update: mediawiki-1.21.8-1.fc19
2014-04-09 01:03:53
debian
debian
[SECURITY] [DSA 2891-3] mediawiki regression update
2014-04-04 18:02:59
osv
osv
mediawiki - security update
2014-03-30 00:00:00
gentoo
gentoo
MediaWiki: Multiple vulnerabilities
2015-02-07 00:00:00